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In the Claima: 

Please amend the claims as follows: 




Laim 1- (Currently Ame: 



verifying receiving a rejueat 



credential by a user of a 
credential being a digital se 



L ded) A method comprising: 

to verify a use of a digital 



digital 



credential, the digital 
curity mechanism associated with_a 



user's identity, the use occilrrinq at a first of a plurality 



of different ^ocationa- Bervifce_s where the digital credential can 
be used; 

verifying the use of the digital credential in re sponse to 
receipt of the recruest to verify; 

sending a result of the verification to t he first service; 

storing & the result if the verification in an activity log 
in a central location service that communicates with each of 



said plurality of differe 



allowing specified ueiers to access said result. 



Claim 2. (Original 
including storing 



transaction 



Claim 3. (Original 
transaction information ;.: 
was signed using a digits, 
credential, a value of a 



t location s- services ; and 



The method of claim 1 further 

information in the activity log. 



The method of claim 2, wherein the 
ncludes at least one of a message that 
.1 signature key of the digital 
transaction, an online service, an 
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internet protocol (IP) addiess, a date of the transaction and a 
time of the transaction. 

Claim 4. (Original) The method of claim 1 further 
including generating an activity report from the activity log, 
wherein the activity repoijt lists the stored verification 
results . 

Claim 5. (Original)/ The method of claim 4 further 
including associating a rjame to a digital signature key of the 
digital credential, wheriin the activity report lists the name 
of the digital signature! key. 

Claim 6. (Original) The method of claim 4, wherein 
generating the activity report includes generating the activity 
report upon request by kn owner of the digital credential. 



Claim 7. (Origii 
generating the activity 
report each time the 



1) The method of claim 4, wherein 
report includes generating the activity 
digital credential is verified. 



Claim 8. (Original) The method of claim 4, wherein 
generating the activity report includes generating a report 
periodically - 
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Claim 9. (Original) Thi method of claim 1 further 
including analyzing the activity log to detect misuse of the 
digital credential - 



Claim 10. (Original) 
generating the activity 
plurality of digital si 



The method of claim 6, wherein 
report includes listing activity for a 
gnatute keys associated with the owner. 



(Original) 



Claim 11 
comprising: 

authorizing one or more 
\ digital credential to act oil 
credential for specified 
the digital credential i 
delegated digital credent ia 
use • 



The method of claim 1 further 



functions 



incl\ides 



delegates to use a delegated 
behalf of the owner of the digital 
, wherein verifying the use of 
determining whether the 
was authorized for the specific 



Claim 12. (Currently fended) The method of claim 4, 
wherein generating an activity report includes generating 
activity reports of the delegates of the user and wherein said 
allowing comprises allowing said user to view all reports, but 
allowing each said delegate to view only their own activity 
report, and not allowing Jach said delegate to view reports for 
other delegates. ^ 
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Claim 13 - (Currently Jtoended) An article comprising a 
computer-readable medium having computer- executable instructions 

a computer to: 

test to verify a use of a digital 



stored thereon for causing 
verifying receive a r 



credential by a user of a 



dig 



igital credential at any of a 



plurality of different ioeafc±ef» services where the digital 



credential can be use d, thc t 



_digital credential being a digital 



security mechanism associa/^d with a u ser's identity; aad 




verify the use of the! digital credential in response to 
receipt of the request to verify from a first service of the 
plurality of different services; 

send a result of the verification to the firs t service; 

storing store a result of the verification in an activity 
log in a central l ocation ' service that communicates with each of 
said plurality of different looationo services ; and 

allowing allow specified users to access said result. 

Claim 14. (Original) The article of claim 13, wherein the 
computer-executable instructions cause the computer to store 
transaction information in activity log. 

Claim 15. (Original) The article of claim 14, wherein the 
transaction information includes at least one of a message that 
was signed using a digital signature key of the digital 
credential, a transaction value, an online service processing 
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the transaction/ an 
computing device o; 
transaction and the time 
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internet protocol (IP) address of a 

the transaction, the date of the 
of the transaction. 



riginating 



Claim 16. {Original^ The article of claim 13, wherein the 
computer-executable instructions cause the computer to generate 
an activity report from the activity log, wherein the activity 
report lists the stored verification results. 

Claim 17- (Currently Amended) The article of claim 16 aad 
r n - Mnnin ^nlnriina , wherein the computer- executable instructions 



cause the computer to free sKiioting associate a name to a digital 



signature key of the digi 
report lists the name of 

Claim 18. (Previoui 



to generate the activity 



tal credential, wherein the activity 
the digital signature key. 

ly Presented) The article of claim 16, 



wherein the computer-exefcutable instructions cause the computer 



report upon receiving a request by an 
owner of the digital credential and wherein said allowing 
comprises allowing said *ser to view all reports, but allowing 
each said delegate to view only their own activity report, and 
not allowing each said delegate to view reports for other 
delegates . 
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.) The article of claim 13/ wherein the 
computer- executable instructions cause the computer to analyze 
the activity log to detect misuse of the digital credential. 

Claim 20. (Original The article of claim 17, wherein the 
computer-executable inet; ructions cause the computer to list in 
the activity report activity for a plurality of digital 
signature keys associated with the owner according to the name 
of the digital signature key. 




Claim 21. (Origi 
^ computer-executable 



ml 



inst ructions 



to 




one or more delegates 
act on behalf of the owfrer 
specified functions and 
credential was authorized 



(Original) 



Claim 22. 
computer- executable i 
activity reports of the 



by a user of a digital 



us e d f to verify the us< 



) The article of claim 20, wherein the 
cause the computer to authorize 
use a delegated digital credential to 
of the digital credential for 
determine whether the delegated digital 
for the specific use. 



The article of claim 21, wherein the 
cause the computer to generate 
delegates . 



instructions 



Claim 23. (Currently Amended) A system comprising: 

a server to receive requests to verify digital credentials 



credential at any of a plurality of 



different locationo sei -vices where the digital credential can be 



of the digital credential in response to 
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to send results from the verifications 



to the services ; 

an activity log coup 
from the verification 



ued to the server to store the results 



verifications in a central ^ ocatio ft 



service that communicatee 
different looationo servi 



a communication part 
said results. 



Claim 24. (Origina 
activity log is configured 
each authentication result . 



Lginal 



with each of said plurality of 
ses; and 



, allowing specified users to access 



) The system of claim 23 , wherein the 
to store transaction information for 



of 



Claim 25. (Ori 
transaction information 
signed message, a date 
transaction , an online 
internet protocol (IP) 
a time of the transaction 



) The system of claim 24, wherein the 
includes at least one of a digitally 
the transaction, a value of the 
service requesting the authentication, an 
iddress, a value of the transaction, and 



Claim 26. (Previously Presented) The system of claim 23, 
and further comprising an owner database to store information of 
an owner of the digital credential and owner -approved delegates 
and wherein said communication element allows said owner to view 



8 

Received from < 1 858 678 5099 > at 8/6103 3:1 8:24 PM [Eastern Daylight Time] 



08/06/2003 12:20 FAX 1 858 678 5089 



FISH AND RICHARDSON 



0010/027 




Attorney's Docket No. : 10559-225001 
Assignee: Intel Corporation 



all reports, but allows iach said delegate to view only their 
own report, and not reports £or other delegates. 

Claim 27. (Currently Amended) An article comprising a 
computer-readable mediuii having data structures stored thereon 
comprising: 

a first data field to store a result from an verification 
of a digital credential by a user of a digital credential at any 
of a plurality of different location* services where the digital 
credential can be used; 

a plurality of dita fields to store transaction information 
relating to each verification result in a central location 
service that communicktes with each of said plurality of 
different locations services; and 

a data access structure, allowing specified users to access 
said results. 



Claim 28. 
plurality of data 
signed message , a 
transaction, a value 
internet protocol 
the transaction, and 
transaction. 



(Original) The article of claim 27, wherein the 
fijelds store at least one of a digitally 
e of the transaction, a time of the 
of the transaction, an online service, an 

address of a computing device originating 
goods or services involved in the 



dat 



UP) 



J 
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Claim 29. (Original) The article of claim 27, wherein the 
data structures further include a plurality of data f/elda to 
store owner and delegate information. 

Claim 30. (Currently Amended) A method comprising: 
receiving use information describing a first use of a 
digital credential by an owner of a d igital credential, at any 
of a plurality of different services where the digital 
credential can be used, the digital cred ential being a digital 
security mechanism associated with^ user's identity; 

receiving use information describing a second use of the 
digital credential bv a delegate of the owner of the digital 
credential, at any of the plurality of dif ferent services where 
the digital credential cari be used; 

storing the use information in an activity log; and 
generating an activity report for the delegate based on the 

activity logj^ a»d 

generating an activity report for the owner based on the 

activity log; 

whoroiy paid oommunioation clement allowo allowing said 
owner to view all report S7--bttfe£__and 

ixllova each allowing said delegate to view only their own 
the activity report for the delegate^ and not the activity 
iort for the owner or activity reports for other delegates. 
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Claim 31. (Original) The method of claim 30, wherein the 
use information includes transaction information. 

Claim 32. (Original) The method of claim 30/ wherein the 
use information includes verification informatijzfa for the 
digital credential 

Claim 33. (Original) The method of/claim 31, wherein the 
transaction information includes at leait one of a message that 
was signed, a transaction value, aniline service, an internet 
protocol (IP) address, a value of/the transaction, a date of the 
transaction and a the time of Ule transaction. 

Claim 34. (Original) /The method of claim 30, wherein the 
digital credential includes a digital signature key, and further 
wherein generating the Activity report includes associating a 
name to the digital signature key and listing the name of the 
digital signature Jcey. 

Claim 35. / (Currently Amended) The method of claim 30, 
wherein generating the activity report for the owner includes 
generating/he activity report upon request by an owner of the 
digital /Credential . 
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Claim 36. (Original) The method of claim 30, wherein 
generating the activity report includes generating the 7 activity 
report each time the digital credential is verifiec 

Claim 37. (Original) The method of claim/30, wherein 
generating the activity report includes generating a report 
periodically . 

Claim 38. (Original) The method /6f claim 30 further 
including analyzing the activity log/to detect misuse of the 
digital credential. 

Claim 39. (Currently Amended) The method of claim 35, 
( wherein generating the activ/ty report includes listing activity 
for a plurality of digital/signature keys associated. with the 
owner mid wherein oaid allowing oomprioeo allowing aaid uoor bo 
view all Koporto, but /Allowing caah aaid delegate to viow onl y 

paid delegate 



their own aotivity report , and not allowing each - 
to view roporfee for other delegated . 



Claim 40./ (Currently Amended) The method of claim 30 
further comprising: 

authorizing one or more delegates to use a delegated 
digital /credential to act on behalf of the owner of the digital 

;ial for specified functions, wherein verifying the use of 
the/digital credential includes determining whether the 
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delegated digital credential was authorized for the specific use 
and whorcin paid allowing oompriaca allowing caid use* to vie w 
all reports, but allowing each oaid delegate t o view only their 
ewn activity report, not allowing oaoh paid delegate to view 
report o for other dolojgatQQ 

Claim 41. (Currently Amended) The method of claim 30, 
wherein generating <J the activity report for the owner includes 
generating activity ieports of the delegates of the ase* owner. 

Claim 42. (Cuitently Amended) A method comprising: 

storing use information for a digital credential of a 
plurality of delegates who are delegated to use said digital 
credential by an rdna r. the digital cr edential being a digital 
security mechanism/ associated with a user's identity; 

processing thfe use information for each of said plurality 
of delegates to detect miBuse; and 

generating a:i alert to the owner wfee» based on the 
detection of misuse 4e- detected . 

Claim 43. (Original) The method of claim 42, wherein 
generating an alirt includes generating an activity report based 
on the use information. 
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Claim 44. (Original 
generating an alert i 
provider. 



includes 
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The method of claim 42, wherein 
alerting a credential service 



Claim 45. (Currently Amended) The method of claim 42, 
wherein the use information includea transaction information and 
wherein paid allowing thi method furher comprises allowing said 



«ee* owner to view all reports, but allowing each said delegate 
to view only their own Jctivity report, and not allowing each 
said delegate to view riports for other delegates. 

Claim 46. (Original) The method of claim 42, wherein the 
use information includes verification information for the 
| digital credential. 

Claim 47. (Original) The method of claim 45, wherein the 
transaction information includes at least one of a message that 
was signed, a transaction value, an online service, an internet 
protocol (IP) address a value of the transaction, a date of the 
transaction and a the! time of the transaction. 

Claim 48. (Currently Amended) A method comprising: 
receiving transaction requests from a plurality of delegate 
users who are delegated from an owner, wherein the transaction 
requests include digital credentials for the delegate usera^ the 
di gital credentials being digital securit y mechanisms associated 
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with users' identities ; 



processing t 



;tie transaction requests; and 
communicating transaction information to a central service, 
wherein the translation information includes the digital 
credentials of thi delegate, the transaction information 
^r^n^** to create, for the plurality of delegate users, 



activity reports 



at the central service that and wherein nniri 



glluwijiy LuuipriJcn nllnwlng said *ees owner is allowed to view 




all report but- 
allowed to view only their own activity report-r and not allowing 
each paid dologQi&e allowed to view reports for other delegates 



Claim 49. 
processing the 
digital credential 



(Original) The method of claim 48, wherein 
transaction requests includes communicating the 
b to the central service for verification. 



iei 



Claim 50. 

processing the 

verifying t 
c ommuni c at ijng 

credential service 



Claim 51 
including re 



allowing each oai^ while eac h delegate is 



(Original) The method of claim 48 f wherein 
tquested transaction includes: 
he digital credential; and 

a result of the verification to the 



ceiving 



(Original) The method of claim 48 further 

a activity report from the central service, 
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wherein the activity report lists the transaction information 
for each digital credential. 

Claim 52 . (Original) The method of claim 48 / wherein the 
transaction information includes at least one of/a message that 
was signed, a transaction value, an online service, an internet 
protocol (IP) address, a value of the transaction, a date of the 
transaction and a the time of the transaction. 



Claim 53. (Currently Amended) ^ method comprising: 
receiving a request from a med/cal professional to access 
medical information at a remote location service , wherein the 
request includes a digital credential for the medical 
professional , the digital credential bei ng a digital security 
mechanism associated with /he medical pr ofessional's identity; 

communicating transaction information describing the access 
request and the digital credential to a credential verification 
service ; 

receiving a yerif ication result from the credential 

verification service; 

providing the medical professional access to the medical 
information^ based on the verification result; and 

rec/iving an activity report from the credential 
verification service, wherein the activity report its* lists the 
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transaction information, the digital credential and the 
transaction result. 

Claim 54 ♦ (Original) The method of claim 53, wherein the 
transaction information includes at Ifeast an access type, a date 
of the transaction and a time of trie transaction. 

Claim 55. (Original) Tlte method of claim 53, further 
wherein the digital credential was provided by a credential 
issuing service and a cafedentlal service provider. 

Claim 56- (Op^inal) The method of claim 53. and further 
including: 

receiving a request to access the activity report from an 
\ owner of t#e digital credential; and 

providing the owner access to the activity report. 
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